Knowledge Center

Webinars

Webinar Index

Need CPE credit? A-LIGN’s webinars cover a broad range of topics from compliance to security across all of the services that we offer. A-LIGN is also a registered sponsor for Group-Internet Based Programs and is listed on the National Registry of CPE Sponsors. We are able to provide CPE credit through these live instructor-based webinars to professionals that register and sign up to receive credit. Below, check out upcoming webinars, or watch our previous webinars. Watch, learn, and contact us if you have any questions.

Past Webinars

Please click on the title of our past webinars to view the recordings.

With the release of HITRUST CSF v9, A-LIGN Managing Consultant and HITRUST CCSFP, Blaise Wabo, discusses the latest evolution of the HITRUST CSF. This update, released in late August/early September 2017, features a number of changes including the expansion of the framework and the ability to comply with the NIST Cybersecurity Framework. In this webinar, Blaise addresses the healthcare risk environment, citing the emerging trends and technologies that make standards like HITRUST necessary, review the incorporation with guidance such as the FFIEC Information Security Examination Handbook, and observe how HITRUST can be used to support regulatory need.

Financial institutions (FIs) continue to rely on technology service providers (TSPs) to provide or enable banking functions. In response to this move, the FDIC has created guidance to more-clearly supervise FI contracts with TSPs as they relate to business continuity planning, as well as responding to and reporting on cybersecurity incidents. In response to the guidance released in Technology Service Provider Contracts with FDIC-Supervised Institutions, Director of Security Services, Petar Besalev, is conducting an informative webinar that covers how to develop a business continuity plan, the guidelines established for incident response programs, and the risk management responsibilities that FIs must assume.

The deadline for organizations to comply with the General Data Protection Regulation (GDPR) is May 25, 2018. Are you prepared? Aimed at enacting strong consumer protection laws, the GDPR affects any organization that processes or handles the information of European Union citizens. A-LIGN Director of Security Services, Petar Besalev, discusses the data privacy and security environment, reviews the requirements set within the GDPR, and discusses compliance options for your organization.

Any SSAE 16 report with an opinion dated on or after May 1, 2017, will be issued under the new SSAE 18 standard. But what does it mean for SSAE 16 engagements that your organization has previously conducted? SOC Manager, Stephanie Oyler, discusses how the upcoming change will affect your organization, address how to gain efficiencies through your audit, and observe the differences between SSAE 16 and SOC 1/SSAE 18.

Do you and your employees know how to identify a social engineering attack? As hackers become increasingly savvy at breaking into accounts through social engineering, organizations need to better understand how to avoid becoming another target. A-LIGN Partner, Gene Geiger, has 20 years of security and compliance experience assisting organizations in defending against and identifying attack vectors.

In 2016, as many standards and methodologies, such as PCI DSS, FedRAMP and HITRUST were met with revisions, we look at how to appropriately implement these changes for your organization. Our compliance trail guides consider how new standards, such as the EU – U.S. Privacy Shield, and upcoming changes to SSAE 16 and SOC 2 standards, will affect your organization in the upcoming year. A-LIGN Partners, Scott Price and Gene Geiger, will review the security and compliance landscape in 2016, consider how new standards will affect your organization in the upcoming year, and prepare you to achieve compliance in 2017.

A decade of security innovation and awareness, combined with maturing compliance standards such as PCI DSS, ISO 27001 and SOC 2 have improved our security culture. However, the same security vulnerabilities found in 2006 continue to appear today in standard penetration testing. Industry veteran and Vice President of Business Development at A-LIGN, Greg Johnson, will address the data breach landscape, the top security vulnerabilities still present, and review how your organization can avoid them.

As Michael Phelps and Katie Ledecky make their way home from the Olympics in Rio, A-LIGN’s experienced assessors consider the journey that organizations take to “Go for the Gold” and become ALTA Best Practices certified. A-LIGN Managing Consultant, Blaise Wabo, will explain what ALTA Best Practices is, how to “train” for an assessment, and why you should become ALTA Best Practices certified.

Does your organization know how to successfully prepare for a PCI DSS assessment? Without proper preparation, a PCI DSS audit can become more time and resource intensive than necessary. In this webinar, participants will learn why PCI DSS audits can become such a lengthy, drawn-out process and how to remedy this issue by preparing appropriately. A-LIGN’s Vice President of Business Development, Greg Johnson, will explain audit preparation techniques, review segmentation issues, and expand on other pertinent PCI DSS audit pitfalls.

Organizations are constantly asking A-LIGN’s experienced assessors about the audit options that make sense for their organization. During this webinar, Managing Consultant, Stephanie Oyler, takes an in-depth look at the differences between SOC 1 and SOC 2, highlights which SOC audit applies to different organizational situations, and explains how to leverage SOC audits within your existing compliance framework.

Data breaches are on the forefront of our minds as they occur with increased frequency and severity. From the theft of minimal information like email addresses, to the full disclosure of social security and credit card numbers – data breaches can be disastrous for not only the victim organization, but for an entire chain of affected entities. A-LIGN Managing Consultant and Lead Penetration Tester, Jeff Sweetwood will explain what a data breach is, recent trends, and how to prepare your organization.

Every day, card data is pilfered from both Point-of-Sale (POS) and web-facing merchants. This presentation will focus on key, and often ignored, PCI requirements that provide greater safety to your business. A-LIGN’s VP of Business Development, Greg Johnson, will share his knowledge gained through years of experience working with compromised merchants.

Violence in the workplace has always been a concern for companies. With the dramatic rise of shooting incidents in the workplace over the last few years, companies are realizing that their current employee safety procedures have not kept up with the times. Your company most likely has procedures and drills for fires and tornadoes, but not for violent acts from employees. In this session, A-LIGN guest presenter, James Green, will teach you how to incorporate active shooter awareness into your life safety program.

HITRUST is the sum of multiple audit standards and serves as a comprehensive certification for those in the healthcare industry. A-LIGN Partner Gene Geiger will explain what HITRUST is, how these overlapping standards fit together, and how leveraging current audits can reduce the time, money, and effort necessary to achieve HITRUST certification. Furthermore, Gene will discuss how to integrate HITRUST into your current compliance program.

A-LIGN Partner Gene Geiger and OrangeParachute Founder Travis Hyde hold a discussion in which they answer questions regarding the current state of information security, the relevance of the international standard ISO 27001, and the top-down approach benefits of becoming certified.

Managing Partner Scott Price and Managing Consultant Steve Simmons will take a comprehensive look at‪ SOC1 / SSAE 16 and SOC 2 audits, the advantages and disadvantages of each, and answer the question of which audit companies should undergo.

Learning from the cybersecurity incidents of 2014, Gene Geiger, Partner at A-LIGN will host a webinar during which Marc Rubbinaccio, Senior Consultant at A-LIGN, will review the incidents, identify common themes, and discuss how organizations can strengthen their information security.

Partner Gene Geiger hosts the A-LIGN Security Awareness Boot Camp! Our boot camp is designed to take viewers through rigorous course objectives that will strengthen their knowledge of information security and improve their reaction to potential threats.

By December 15, 2014, all organizations utilizing the COSO Framework will need to complete their updates. The concepts underlying the 5 COSO components have now been codified as principles and must be satisfied as part of your framework. During our presentation, Sara McLane, Senior Consultant at A-LIGN, will walk you through the updated principles and points of focus, as well as highlight common controls that will meet the updated principles.

As a globally recognized security standard, the ISO 27001 certification is gaining traction in the U.S. as more companies are pursuing the certification to meet contractual obligations or to gain a competitive advantage. Gene Geiger, Partner at A-LIGN, will outline the steps required to become ISO 27001 Certified.

From this discussion, you will learn how to determine the right security or compliance assessment for your organization, select the right audit firm that best fits your individual needs, prepare for a successful assessment, conduct an assessment with multiple audit considerations, leverage on-going status discussions regarding exceptions or potential issues, and handle future business considerations — while keeping compliance in mind.

The goal of this discussion is to provide highlights of the changes in the standard from Version 2.0 to 3.0, discuss the required implementation timeline and how organizations should approach these changes.